CVE-2019-13014

2019-08-2316:55:55

CWE-264

obdev

www.cve.org

AI Score

5.4

Confidence

High

EPSS

Percentile

12.6%

JSON

Little Snitch versions 4.4.0 fixes a vulnerability in a privileged helper tool. However, the operating system may have made a copy of the privileged helper which is not removed or updated immediately. Computers may therefore still be vulnerable after upgrading to 4.4.0. Version 4.4.1 fixes this issue by removing the operating system’s copy during the upgrade.

CNA Affected

[
  {
    "product": "Little Snitch",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "4.4.0"
      }
    ]
  }
]

References

obdev.at/cve/2019-13014-MzE24Ify4p.html